[v5,08/14] x86/mm: Add generic guest initialization hook

Message ID	20231030063652.68675-9-nikunj@amd.com (mailing list archive)
State	New, archived
Headers	show Received: from lindbergh.monkeyblade.net (lindbergh.monkeyblade.net [23.128.96.19]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 47E6C6AB1 for <kvm@vger.kernel.org>; Mon, 30 Oct 2023 06:38:34 +0000 (UTC) Received-SPF: Pass (protection.outlook.com: domain of amd.com designates 165.204.84.17 as permitted sender) receiver=protection.outlook.com; client-ip=165.204.84.17; helo=SATLEXMB04.amd.com; pr=C From: Nikunj A Dadhania <nikunj@amd.com> To: <linux-kernel@vger.kernel.org>, <thomas.lendacky@amd.com>, <x86@kernel.org>, <kvm@vger.kernel.org> CC: <bp@alien8.de>, <mingo@redhat.com>, <tglx@linutronix.de>, <dave.hansen@linux.intel.com>, <dionnaglaze@google.com>, <pgonda@google.com>, <seanjc@google.com>, <pbonzini@redhat.com>, <nikunj@amd.com> Subject: [PATCH v5 08/14] x86/mm: Add generic guest initialization hook Date: Mon, 30 Oct 2023 12:06:46 +0530 Message-ID: <20231030063652.68675-9-nikunj@amd.com> In-Reply-To: <20231030063652.68675-1-nikunj@amd.com> References: <20231030063652.68675-1-nikunj@amd.com> Precedence: bulk MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Content-Type: text/plain
Series	Add Secure TSC support for SNP guests \| expand [v5,00/14] Add Secure TSC support for SNP guests [v5,01/14] virt: sev-guest: Use AES GCM crypto library [v5,02/14] virt: sev-guest: Move mutex to SNP guest device structure [v5,03/14] virt: sev-guest: Replace dev_dbg with pr_debug [v5,04/14] virt: sev-guest: Add SNP guest request structure [v5,05/14] virt: sev-guest: Add vmpck_id to snp_guest_dev struct [v5,06/14] x86/sev: Cache the secrets page address [v5,07/14] x86/sev: Move and reorganize sev guest request api [v5,08/14] x86/mm: Add generic guest initialization hook [v5,09/14] x86/sev: Add Secure TSC support for SNP guests [v5,10/14] x86/sev: Change TSC MSR behavior for Secure TSC enabled guests [v5,11/14] x86/sev: Prevent RDTSC/RDTSCP interception for Secure TSC enabled guests [v5,12/14] x86/kvmclock: Skip kvmclock when Secure TSC is available [v5,13/14] x86/tsc: Mark Secure TSC as reliable clocksource [v5,14/14] x86/sev: Enable Secure TSC for SNP guests

Message ID

20231030063652.68675-9-nikunj@amd.com (mailing list archive)

State

New, archived

Headers

Received-SPF: Pass (protection.outlook.com: domain of amd.com designates
 165.204.84.17 as permitted sender) receiver=protection.outlook.com;
 client-ip=165.204.84.17; helo=SATLEXMB04.amd.com; pr=C
From: Nikunj A Dadhania <nikunj@amd.com>
To: <linux-kernel@vger.kernel.org>, <thomas.lendacky@amd.com>,
	<x86@kernel.org>, <kvm@vger.kernel.org>
CC: <bp@alien8.de>, <mingo@redhat.com>, <tglx@linutronix.de>,
	<dave.hansen@linux.intel.com>, <dionnaglaze@google.com>, <pgonda@google.com>,
	<seanjc@google.com>, <pbonzini@redhat.com>, <nikunj@amd.com>
Subject: [PATCH v5 08/14] x86/mm: Add generic guest initialization hook
Date: Mon, 30 Oct 2023 12:06:46 +0530
Message-ID: <20231030063652.68675-9-nikunj@amd.com>
In-Reply-To: <20231030063652.68675-1-nikunj@amd.com>
References: <20231030063652.68675-1-nikunj@amd.com>
Precedence: bulk
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Content-Type: text/plain
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 30 Oct 2023 06:38:28.2934
 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 
 720eea35-55da-4c42-b6eb-08dbd912d375
X-MS-Exchange-CrossTenant-Id: 3dd8961f-e488-4e60-8e11-a82d994e183d
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: 
 TenantId=3dd8961f-e488-4e60-8e11-a82d994e183d;Ip=[165.204.84.17];Helo=[SATLEXMB04.amd.com]
X-MS-Exchange-CrossTenant-AuthSource: 
	BL6PEPF0001AB73.namprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM4PR12MB5795

Series

Add Secure TSC support for SNP guests | expand

Commit Message

Nikunj A. Dadhania Oct. 30, 2023, 6:36 a.m. UTC

Add generic enc_init guest hook for performing any type of
initialization that is vendor specific.

Signed-off-by: Nikunj A Dadhania <nikunj@amd.com>
---
 arch/x86/include/asm/x86_init.h | 2 ++
 arch/x86/kernel/x86_init.c      | 2 ++
 arch/x86/mm/mem_encrypt.c       | 3 +++
 3 files changed, 7 insertions(+)

Comments

Dave Hansen Oct. 30, 2023, 5:23 p.m. UTC | #1

On 10/29/23 23:36, Nikunj A Dadhania wrote:
> diff --git a/arch/x86/kernel/x86_init.c b/arch/x86/kernel/x86_init.c
> index a37ebd3b4773..a07985a96ca5 100644
> --- a/arch/x86/kernel/x86_init.c
> +++ b/arch/x86/kernel/x86_init.c
> @@ -136,6 +136,7 @@ static bool enc_status_change_finish_noop(unsigned long vaddr, int npages, bool
>  static bool enc_tlb_flush_required_noop(bool enc) { return false; }
>  static bool enc_cache_flush_required_noop(void) { return false; }
>  static bool is_private_mmio_noop(u64 addr) {return false; }
> +static void enc_init_noop(void) { }
>  
>  struct x86_platform_ops x86_platform __ro_after_init = {
>  	.calibrate_cpu			= native_calibrate_cpu_early,
> @@ -158,6 +159,7 @@ struct x86_platform_ops x86_platform __ro_after_init = {
>  		.enc_status_change_finish  = enc_status_change_finish_noop,
>  		.enc_tlb_flush_required	   = enc_tlb_flush_required_noop,
>  		.enc_cache_flush_required  = enc_cache_flush_required_noop,
> +		.enc_init		   = enc_init_noop,
>  	},
>  };
>  
> diff --git a/arch/x86/mm/mem_encrypt.c b/arch/x86/mm/mem_encrypt.c
> index 9f27e14e185f..01abecc9a774 100644
> --- a/arch/x86/mm/mem_encrypt.c
> +++ b/arch/x86/mm/mem_encrypt.c
> @@ -84,5 +84,8 @@ void __init mem_encrypt_init(void)
>  	/* Call into SWIOTLB to update the SWIOTLB DMA buffers */
>  	swiotlb_update_mem_attributes();
>  
> +	if (x86_platform.guest.enc_init)
> +		x86_platform.guest.enc_init();
> +
>  	print_mem_encrypt_feature_info();
>  }

How does '.enc_init' ever get set to NULL?  Isn't the point of having
and using a 'noop' function so that you don't have to do NULL checks?

Tom Lendacky Oct. 30, 2023, 7:19 p.m. UTC | #2

On 10/30/23 01:36, Nikunj A Dadhania wrote:
> Add generic enc_init guest hook for performing any type of
> initialization that is vendor specific.

I think this commit message should be expanded on a bit... like when it is 
intended to be called, etc.

Thanks,
Tom

> 
> Signed-off-by: Nikunj A Dadhania <nikunj@amd.com>
> ---
>   arch/x86/include/asm/x86_init.h | 2 ++
>   arch/x86/kernel/x86_init.c      | 2 ++
>   arch/x86/mm/mem_encrypt.c       | 3 +++
>   3 files changed, 7 insertions(+)
> 
> diff --git a/arch/x86/include/asm/x86_init.h b/arch/x86/include/asm/x86_init.h
> index 5240d88db52a..6a08dcd1f3c4 100644
> --- a/arch/x86/include/asm/x86_init.h
> +++ b/arch/x86/include/asm/x86_init.h
> @@ -148,12 +148,14 @@ struct x86_init_acpi {
>    * @enc_status_change_finish	Notify HV after the encryption status of a range is changed
>    * @enc_tlb_flush_required	Returns true if a TLB flush is needed before changing page encryption status
>    * @enc_cache_flush_required	Returns true if a cache flush is needed before changing page encryption status
> + * @enc_init			Prepare and initialize encryption features
>    */
>   struct x86_guest {
>   	bool (*enc_status_change_prepare)(unsigned long vaddr, int npages, bool enc);
>   	bool (*enc_status_change_finish)(unsigned long vaddr, int npages, bool enc);
>   	bool (*enc_tlb_flush_required)(bool enc);
>   	bool (*enc_cache_flush_required)(void);
> +	void (*enc_init)(void);
>   };
>   
>   /**
> diff --git a/arch/x86/kernel/x86_init.c b/arch/x86/kernel/x86_init.c
> index a37ebd3b4773..a07985a96ca5 100644
> --- a/arch/x86/kernel/x86_init.c
> +++ b/arch/x86/kernel/x86_init.c
> @@ -136,6 +136,7 @@ static bool enc_status_change_finish_noop(unsigned long vaddr, int npages, bool
>   static bool enc_tlb_flush_required_noop(bool enc) { return false; }
>   static bool enc_cache_flush_required_noop(void) { return false; }
>   static bool is_private_mmio_noop(u64 addr) {return false; }
> +static void enc_init_noop(void) { }
>   
>   struct x86_platform_ops x86_platform __ro_after_init = {
>   	.calibrate_cpu			= native_calibrate_cpu_early,
> @@ -158,6 +159,7 @@ struct x86_platform_ops x86_platform __ro_after_init = {
>   		.enc_status_change_finish  = enc_status_change_finish_noop,
>   		.enc_tlb_flush_required	   = enc_tlb_flush_required_noop,
>   		.enc_cache_flush_required  = enc_cache_flush_required_noop,
> +		.enc_init		   = enc_init_noop,
>   	},
>   };
>   
> diff --git a/arch/x86/mm/mem_encrypt.c b/arch/x86/mm/mem_encrypt.c
> index 9f27e14e185f..01abecc9a774 100644
> --- a/arch/x86/mm/mem_encrypt.c
> +++ b/arch/x86/mm/mem_encrypt.c
> @@ -84,5 +84,8 @@ void __init mem_encrypt_init(void)
>   	/* Call into SWIOTLB to update the SWIOTLB DMA buffers */
>   	swiotlb_update_mem_attributes();
>   
> +	if (x86_platform.guest.enc_init)
> +		x86_platform.guest.enc_init();
> +
>   	print_mem_encrypt_feature_info();
>   }

Nikunj A. Dadhania Nov. 2, 2023, 4:30 a.m. UTC | #3

On 10/30/2023 10:53 PM, Dave Hansen wrote:
> On 10/29/23 23:36, Nikunj A Dadhania wrote:
>> diff --git a/arch/x86/kernel/x86_init.c b/arch/x86/kernel/x86_init.c
>> index a37ebd3b4773..a07985a96ca5 100644
>> --- a/arch/x86/kernel/x86_init.c
>> +++ b/arch/x86/kernel/x86_init.c
>> @@ -136,6 +136,7 @@ static bool enc_status_change_finish_noop(unsigned long vaddr, int npages, bool
>>  static bool enc_tlb_flush_required_noop(bool enc) { return false; }
>>  static bool enc_cache_flush_required_noop(void) { return false; }
>>  static bool is_private_mmio_noop(u64 addr) {return false; }
>> +static void enc_init_noop(void) { }
>>  
>>  struct x86_platform_ops x86_platform __ro_after_init = {
>>  	.calibrate_cpu			= native_calibrate_cpu_early,
>> @@ -158,6 +159,7 @@ struct x86_platform_ops x86_platform __ro_after_init = {
>>  		.enc_status_change_finish  = enc_status_change_finish_noop,
>>  		.enc_tlb_flush_required	   = enc_tlb_flush_required_noop,
>>  		.enc_cache_flush_required  = enc_cache_flush_required_noop,
>> +		.enc_init		   = enc_init_noop,
>>  	},
>>  };
>>  
>> diff --git a/arch/x86/mm/mem_encrypt.c b/arch/x86/mm/mem_encrypt.c
>> index 9f27e14e185f..01abecc9a774 100644
>> --- a/arch/x86/mm/mem_encrypt.c
>> +++ b/arch/x86/mm/mem_encrypt.c
>> @@ -84,5 +84,8 @@ void __init mem_encrypt_init(void)
>>  	/* Call into SWIOTLB to update the SWIOTLB DMA buffers */
>>  	swiotlb_update_mem_attributes();
>>  
>> +	if (x86_platform.guest.enc_init)
>> +		x86_platform.guest.enc_init();
>> +
>>  	print_mem_encrypt_feature_info();
>>  }
> 
> How does '.enc_init' ever get set to NULL?  Isn't the point of having
> and using a 'noop' function so that you don't have to do NULL checks?

True, I will remove the check.

Regards
Nikunj

Nikunj A. Dadhania Nov. 2, 2023, 5:08 a.m. UTC | #4

On 10/31/2023 12:49 AM, Tom Lendacky wrote:
> On 10/30/23 01:36, Nikunj A Dadhania wrote:
>> Add generic enc_init guest hook for performing any type of
>> initialization that is vendor specific.
> 
> I think this commit message should be expanded on a bit... like when it is intended to be called, etc.

Sure

Regards
Nikunj

diff --git a/arch/x86/include/asm/x86_init.h b/arch/x86/include/asm/x86_init.h
index 5240d88db52a..6a08dcd1f3c4 100644
--- a/arch/x86/include/asm/x86_init.h
+++ b/arch/x86/include/asm/x86_init.h
@@ -148,12 +148,14 @@  struct x86_init_acpi {
  * @enc_status_change_finish	Notify HV after the encryption status of a range is changed
  * @enc_tlb_flush_required	Returns true if a TLB flush is needed before changing page encryption status
  * @enc_cache_flush_required	Returns true if a cache flush is needed before changing page encryption status
+ * @enc_init			Prepare and initialize encryption features
  */
 struct x86_guest {
 	bool (*enc_status_change_prepare)(unsigned long vaddr, int npages, bool enc);
 	bool (*enc_status_change_finish)(unsigned long vaddr, int npages, bool enc);
 	bool (*enc_tlb_flush_required)(bool enc);
 	bool (*enc_cache_flush_required)(void);
+	void (*enc_init)(void);
 };
 
 /**
diff --git a/arch/x86/kernel/x86_init.c b/arch/x86/kernel/x86_init.c
index a37ebd3b4773..a07985a96ca5 100644
--- a/arch/x86/kernel/x86_init.c
+++ b/arch/x86/kernel/x86_init.c
@@ -136,6 +136,7 @@  static bool enc_status_change_finish_noop(unsigned long vaddr, int npages, bool
 static bool enc_tlb_flush_required_noop(bool enc) { return false; }
 static bool enc_cache_flush_required_noop(void) { return false; }
 static bool is_private_mmio_noop(u64 addr) {return false; }
+static void enc_init_noop(void) { }
 
 struct x86_platform_ops x86_platform __ro_after_init = {
 	.calibrate_cpu			= native_calibrate_cpu_early,
@@ -158,6 +159,7 @@  struct x86_platform_ops x86_platform __ro_after_init = {
 		.enc_status_change_finish  = enc_status_change_finish_noop,
 		.enc_tlb_flush_required	   = enc_tlb_flush_required_noop,
 		.enc_cache_flush_required  = enc_cache_flush_required_noop,
+		.enc_init		   = enc_init_noop,
 	},
 };
 
diff --git a/arch/x86/mm/mem_encrypt.c b/arch/x86/mm/mem_encrypt.c
index 9f27e14e185f..01abecc9a774 100644
--- a/arch/x86/mm/mem_encrypt.c
+++ b/arch/x86/mm/mem_encrypt.c
@@ -84,5 +84,8 @@  void __init mem_encrypt_init(void)
 	/* Call into SWIOTLB to update the SWIOTLB DMA buffers */
 	swiotlb_update_mem_attributes();
 
+	if (x86_platform.guest.enc_init)
+		x86_platform.guest.enc_init();
+
 	print_mem_encrypt_feature_info();
 }

[v5,08/14] x86/mm: Add generic guest initialization hook

Commit Message

Comments

Patch